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This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims 

1 . (Currently amended) A method for implementing security features at a portal server, 
comprising: 

receiving a first request from a client; 

in response to receiving the first request, authenticating the client; 

consulting a database to determine access privileges of the authenticated client for 
interactions with a plurality of applications, wherein the applications are located at backend 
servers; 

generating code containing selectable interactions with the applications, wherein any 
authentication for the selectable interactions is performed within the portal server; and 
sending the code to the client^ 

responsive to sending the code to the clie n t, receiving a second request from the client, 
wherein the second request contains a selection o f at least one of the selectable interactions; 
determining from the selection a set of b ackend servers to process the second requesft 
forwarding, the second request to the set of backend servers; 

receiving results corresponding to the sec o nd request from applications executing on the 
backend servers: and 

sending, the results to the client wherein s ending the results to the client fiirtW 
comprises: 

(i) generati ng further selectable interactions: and 

LU) sending the further selectable i nteractions with the results to the client . 

2. (Canceled) 

3. (Canceled) 

4. (Original) The method of claim 1, wherein the portal server is a Web server and the 
portal server comprises a portal application. 
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5. (Original) The method of claim 1 , wherein the database comprises a plurality of 
generic objects, wherein each generic object contains the access privileges related to a user for 
the elements of the plurality of applications. 

6. (Original) The method of claim 5, wherein the access privileges indicate write 

access. 



7. (Original) The method of claim 5, wherein the database is in the form of a table. 

8. (Original) The method of claim 1 wherein the code is in a form that can be rendered 
into a Web page. 



9. (Original) The method of claim 8, wherein the form of the code is comprised of 
active code, wherein the active code can be executed on the client 

10. (Previously presented) The method of claim 1, wherein the selectable interactions 
correspond to operations within the applications and resources related to the applications, and 
wherein the applications, the operations within the applications, and the resources related to the 
applications are displayed on a single Web page. 

1 1. (Original) The method of claim 1, wherein the selectable interactions correspond to 
resources related to the applications. 

12. (Original) The method of claim 1 1, wherein the resources are selected from the 
group consisting of multimedia content, objects, files, attributes of objects, program elements, 
database objects, table entries. 



1 3. (Currently amended) A method at a backend system for securely making available a 
backend application, comprising: 

creating data structures corresponding to interactions with the backend application; 
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associating privileges for each of the data structures, wherein the privileges are fuUy 
checked at a portal application separately hosted from the backend application; 

receiving, at the backend application, a request from the portal application for reading the 
data structures; and 

sending, from the backend application, the data structures to the portal application, 
wherein the interactions are operatio ns t hat ca n be p erformed nn the ha ckend annlieati™ gad m 
re sources related to the backend application. *nH wherein the backe n d application, the oj ^gratioBs 
t hat can be performed on the backend atmli^ t ion. and the resources related to the backenH 
application are displa yed on a single Weh p ap e on a client . 

14. (Previously presented) The method of claim 13, further comprising: 
receiving a request for an interaction with the backend application from the portal 

application; 

processing the request without checking for the privileges; and 

sending the results of processing the request to the portal sesve* application. 

15. (Original) The method of claim 13, wherein the data structures are data objects. 

16. (Original) The method of claim 13, wherein a representation of the data structure is 
from the group consisting of a relational database, an XML document and a class. 

17. (Canceled) 

18. (Previously presented) The method of claim 13, wherein the interactions relate to 
resources associated with the backend application. 

19. (Currently amended) A method for accessing a group of applications at a client 
computer comprising: 

authenticating with a portal server; 
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receiving a list of applications and interactions that can be performed -with the 
applications from the portal server, wherein the applications are stored at backend servers that 
are different from the portal server; 

selecting an interaction; and 

receiving results based on the selection of the interaction without authenticating with the 
backend servers, wherein receivm f th« results further comprises receiving a set of flirt W 
in teractions selectable by the client computer, wherein the po r tal server nerforms all neca^ry 
authentications of the client computer, and wherein the ba c kend servers avo id anv authentic,™ 
Of the Client computer 

20. (Canceled) 

21 . (Original) The method of claim 19, wherein authenticating, receiving the list, 
selecting, and receiving results are at a Web browser. 

22. (Currently amended) A system for implementing security features, comprising: 
a portal server; 

means for receiving a first request from a client at the portal server; 

means for authenticating the client, in response to receiving the first request; 

means for consulting a database to determine access privileges of the authenticated client 
for interactions with a plurality of applications, wherein the applications are located at backend 
servers; 

means for generating code containing selectable interactions with the applications, 
wherein any authentication for the selectable interactions is performed within the portal server; 



means for sending the code to the client; 

means for receivinfi a second request from the client in response tn sending the code tn 
the client, wherein the second request contains a selection 0 f at least one of the seleetehle 
interactions; 

means for determining from the selection a set of ha c kend servers to process tha «™nH 
request; 
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means for forwarding the second request to the set of backend servers; 
means , for receiving resets corresponding to the se^ n d request from anp licsti™., 
executing on the Mckend servers; and 

means for sending the results to the client, wherein the m„ a n S for sending th e rRglllfc tn 
the client farther perform,,- 

fi) generating further selectahle i nteractions: and 

fli) sending the further selectable interactions with the results to the client . 

23. (Canceled) 

24. (Canceled) 

25. (Previously presented) The system of claim 22, wherein the database comprises a 
plurality of generic objects, wherein each generic object contains the access privileges related to 
a user for the elements of the plurality of applications, wherein the database is in the form of a 
table, wherein the selectable interactions correspond to operations within the applications and 
resources related to the applications, and wherein the applications, the operations within the 
applications, and the resources related to the applications are displayed on a single Web page. 

26. (Currently amended) A system for securely making available a backend application, 
comprising: 

a backend system hosting the backend application; 

means for creating data structures at the backend system corresponding to interactions 
with the backend application; 

means for associating privileges for each of the data structures, wherein the privileges are 
fully checked at a portal application separately hosted from the backend application; 

means for receiving, at the backend application, a request from the portal application for 
reading the data structures; and 

means for sending, from the backend application, the data structures to the portal 
application; 
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mgans for receiying.a request for an interaction with t h e backend application from the 
portal application; 

means for processing the request without ch e cking for the privileges: and 
Beans for sending the results of processing the remi ^ st to the mortal * v r v,«*ti^ 



27. (Canceled) 

28. (Currently amended) A system for accessing a group of applications comprising: 
a client computer; 

means for authenticating with a portal server from the client computer; 

means for receiving a list of applications and interactions that can be performed with the 
applications from the portal server, wherein the applications are stored at backend servers that 
are different from the portal server; 

means for selecting an interaction; and 

means for receiving results based on the selection of the interaction without 
authenticating with the backend server s, wherein the means for receiving the results further 
performs receiving a set of further inter a ctions selectable bv the client computer, wherein the 
portal server performs all necessary aut h entications of the client , computer, and wherein the 
backend servers avoid a ny authentication of the client compu^ . 

29. (Canceled) 

30. (Currently amended) An article of manufacture including code for implementing 
security features at a portal server, wherein the code is capable of causing operations, the 
operations comprising: 

receiving a first request from a client; 

in response to receiving the first request, authenticating the client; 

consulting a database to determine access privileges of the authenticated client for 
interactions with a plurality of applications, wherein the applications are located at backend 
servers; 
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generating code containing selectable interactions with the applications, wherein any 
authentication for the selectable interactions is performed within the portal server; m4 
sending the code to the client 

responsive to sendin g the code to the client receiving a second request from the client^ 
wherein the second request cont ains a selection of at least one nf th e selectable jntssactjons 
deteiroining from the selection a set of bacfonH servers to process the second re T i**t ; 
forwarding the second request to t he set of backend servers: 

receiving results correspon ding to th e s econd request from applications executing on the 
backend servers; and 

sending the result s to the client wherein sending the results to the client further 
comprises: 

(i) generating further selectable inte ractions: and 

(n) sending the furthe r selectable interactions with the results to the client . 



3 J. (Canceled) 

32. (Canceled) 

33. (Original) The article of manufacture of claim 30, wherein the portal server is a Web 
server and the portal server comprises a portal application. 

34. (Original) The article of manufacture of claim 30, wherein the database comprises a 
plurality of generic objects, wherein each generic object contains the access privileges related to 
a user for the elements of the plurality of applications. 

35. (Original) The article of manufacture of claim 34, wherein the access privileges 
indicate write access. 

36. (Original) The article of naanufacture of claim 34, wherein the database is in the 
form of a table. 
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37. (Original) The article of manufacture of claim 30 wherein the code is in a form that 
can be rendered into a Web page. 

38. (Original) The article of manufacture of claim 37, wherein the form of the code is 
comprised of active code, wherein the active code can be executed on the client. 

39. (Previously presented) The article of manufacture of claim 30, wherein the 
selectable interactions correspond to operations within the applications and resources related to 
the applications, and wherein the applications, the operations within the applications, and the 
resources related to the applications are displayed on a single Web page. 

40. (Original) The article of manufacture of claim 30, wherein the selectable interactions 
correspond to resources related to the applications. 

41 . (Original) The article of manufacture of claim 40, wherein the resources are selected 
from the group consisting of multimedia content, objects, files, attributes of objects, program 
elements, database objects, table entries. 

42. (Currently amended) An article of manufacture, including code for securely making 
available a backend application at a backend system, wherein the code is capable of causing 
operations, the operations comprising: 

creating data structures corresponding to interactions with the backend application; 

associating privileges for each of the data structures, wherein the privileges are fully 
checked at a portal application separately hosted from the backend application; 

receiving, at the backend application, a request from the portal application for reading 
the data structures; and 

sending, from the backend application, the data structures to the portal application 
wherein the interactions are operations that can be performed n n the backend application and nn 
resources related to the backend application, and wherein the har k end application, the operations 
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that can be performed on the backe nd application, and the resources related to the backead 
applicati on are displayed on a single Web page on a client . 

43. (Previously presented) The article of manufacture of claim 42, further comprising: 
receiving a request for an interaction with the backend application fiom the portal 

application; 

processing the request without checking for the privileges; and 

sending the results of processing the request to the portal s e rver application. 

44. (Original) The article of manufacture of claim 42, wherein the data structures are 
data objects. 

45. (Original) The article of manufacture of claim 42, wherein a representation of the 
data structure is from the group consisting of a relational database, an XML document and a 
class. 

46. (Canceled) 

47. (Previously presented) The article of manufacture of claim 42, wherein the 
interactions relate to resources associated with the backend application. 

48* (Currently amended) An article of manufacture, including code for accessing a group 
of applications at a client computer, wherein the code is capable of causing operations, the 
operations comprising: 

authenticating with a portal server; 

receiving a list of applications and interactions that can be performed with the 
applications from the portal server, wherein the applications are stored at backend servers that 
are different from the portal server, 

selecting an interaction; and 

receiving results based on the selection of the interaction without authenticating with the 
backend servers, wherein receiving the results furth er comprises receiving a set of further 
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interactions selectable by the client computer, wherein the portal server performs all necessary 
atithentications of the client com puter, and wherein the backend servers avoid anv authentication 
of the client computer . 

49. (Canceled) 

50. (Original) The article of manufacture of claim 48, wherein authenticating, receiving 
the list, selecting, and receiving results are at a Web browser. 
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